Fedora 28: bird Security Update
Summary
BIRD is dynamic routing daemon supporting IPv4 and IPv6 versions of routing
protocols BGP, RIP and OSPF.
This package contains IPv4 version.
Updating bird to 1.6.4 release which includes fix for CVE-2018-12066 Running
bird in foreground Bird is running under bird user and group rather than root
* Mon Nov 12 2018 Stanislav Kozina
- bird should run under bird user and group rather than root (#1397574)
- bird should run in foreground (#1285672)
* Mon Nov 12 2018 Stanislav Kozina
- Update bird to 1.6.4 (#1642737)
[ 1 ] Bug #1285672 - Bird should start in foreground in the systemd unit
https://bugzilla.redhat.com/show_bug.cgi?id=1285672
[ 2 ] Bug #1642737 - bird-1.6.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1642737
[ 3 ] Bug #1588771 - CVE-2018-12066 bird: Stack overflow in BGP mask expressions [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1588771
[ 4 ] Bug #1397574 - Bird should drop privileges
https://bugzilla.redhat.com/show_bug.cgi?id=1397574
su -c 'dnf upgrade --advisory FEDORA-2018-8f0d2429d3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
FEDORA-2018-8f0d2429d3 2018-12-07 02:13:26.114657 Product : Fedora 28 Version : 1.6.4 Release : 2.fc28 URL : https://bird.network.cz/ Summary : BIRD Internet Routing Daemon Description : BIRD is dynamic routing daemon supporting IPv4 and IPv6 versions of routing protocols BGP, RIP and OSPF. This package contains IPv4 version. Updating bird to 1.6.4 release which includes fix for CVE-2018-12066 Running bird in foreground Bird is running under bird user and group rather than root * Mon Nov 12 2018 Stanislav Kozina - 1.6.4-2 - bird should run under bird user and group rather than root (#1397574) - bird should run in foreground (#1285672) * Mon Nov 12 2018 Stanislav Kozina - 1.6.4-1 - Update bird to 1.6.4 (#1642737) [ 1 ] Bug #1285672 - Bird should start in foreground in the systemd unit https://bugzilla.redhat.com/show_bug.cgi?id=1285672 [ 2 ] Bug #1642737 - bird-1.6.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1642737 [ 3 ] Bug #1588771 - CVE-2018-12066 bird: Stack overflow in BGP mask expressions [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1588771 [ 4 ] Bug #1397574 - Bird should drop privileges https://bugzilla.redhat.com/show_bug.cgi?id=1397574 su -c 'dnf upgrade --advisory FEDORA-2018-8f0d2429d3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Change Log
References